Changeflow GovPing Data Privacy & Cybersecurity Red Hat JBoss Platform Denial of Service Vulner...
Priority review Notice Added Final

Red Hat JBoss Platform Denial of Service Vulnerability

Favicon for wid.cert-bund.de CERT-Bund Security Advisories
Published March 17th, 2026
Detected March 18th, 2026
Email

Summary

CERT-Bund has issued a security advisory for Red Hat JBoss Enterprise Application Platform, detailing a vulnerability that allows remote attackers to cause a Denial of Service. The advisory provides information on affected versions and mitigation strategies.

View original document View source feed page

What changed

CERT-Bund has released Security Advisory WID-SEC-2026-0761 concerning a Denial of Service vulnerability in Red Hat JBoss Enterprise Application Platform versions prior to 8.1.5. The vulnerability, with a CVSS Base Score of 5.3, can be exploited by remote, anonymous attackers. Affected operating systems include Linux, UNIX, and Windows.

Organizations utilizing the affected Red Hat JBoss Enterprise Application Platform versions should review the advisory for mitigation strategies. While no specific compliance deadline is mentioned, prompt application of available patches or workarounds is recommended to prevent service disruption and potential cascading impacts on business operations. The advisory highlights the need for continuous monitoring and patching of critical infrastructure components.

What to do next

  1. Review CERT-Bund Security Advisory WID-SEC-2026-0761
  2. Assess if Red Hat JBoss Enterprise Application Platform < 8.1.5 is in use
  3. Implement recommended mitigation strategies to address the Denial of Service vulnerability

Source document (simplified)

[WID-SEC-2026-0761] Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service CVSS Base Score 5.3 (mittel) CVSS Temporal Score 4.6 (mittel) Remoteangriff ja Datum 17.03.2026 Stand 18.03.2026 Mitigation ja

Betroffene Systeme

Betriebssystem

  • Linux
  • UNIX
  • Windows

Produktbeschreibung

JBoss Enterprise Application Platform ist eine skalierbare Plattform für Java-Anwendungen, inklusive JBoss Application Server, JBoss Hibernate und Boss Seam.

Produkte

17.03.2026
- Red Hat JBoss Enterprise Application Platform <8.1.5

Angriff

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat JBoss Enterprise Application Platform ausnutzen, um einen Denial of Service Angriff durchzuführen. CVE Informationen Versionshistorie Feedback zum Advisory geben

Related changes

Favicon for wid.cert-bund.de nghttp2 Vulnerability Allows Denial of Service
Priority review Mar 18, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de Linux Kernel Vulnerabilities
Priority review Mar 18, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de Budibase Vulnerability Allows Bypass and Information Disclosure
Priority review Mar 18, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr VMware Products Multiple Vulnerabilities Advisory
Priority review Mar 18, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Multiple vulnerabilities found in Atlassian products
Priority review Mar 18, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Apple Products Vulnerability: Security Policy Bypass
Priority review Mar 18, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity

Source

Favicon for wid.cert-bund.de
CERT-Bund Security Advisories wid.cert-bund.de/content/public/securityAdvisory/rss
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
CERT-Bund
Published
March 17th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Technology companies
Geographic scope
de

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Topics
Software Vulnerabilities IT Operations

Browse Categories

Agriculture & Food Safety 61 Banking & Finance 179 Consumer Protection 35 Courts & Legal 243 Data Privacy & Cybersecurity 59 Defense & National Security 48 Education 20 Energy 94 Environment 81 Government & Legislation 240 Healthcare 106 Housing 15 Immigration 8 Insurance 17 Labor & Employment 107 Pharma & Drug Safety 72 Securities & Markets 73 Tax 48 Telecom & Technology 34 Trade & Sanctions 122 Transportation 56

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when CERT-Bund Security Advisories publishes new changes.

Free. Unsubscribe anytime.